Hi . Since thursday , when I ran a malwarebytes full scan, mbam found this thing “PUP.Optional.ConduitTB.Gen”, its type : Registry key , and its location which is the most weird and i’ve not even found it to this day : "HKU\S-1-5-21-…-…-…-1003\SOFTWARE\Conduit . Malwarebytes says it’s pup ( potential unwanted program ) , but for real . Every time I put it to quarantine and delete it, this virus ( thing ) it shows up again next day , maybe next hour after the removal .
Here is one log from Threat Scan : Malwarebytes Anti-Malware
www.malwarebytes.org
Scan Date: 05.03.2016
Scan Time: 01:17
Logfile:
Administrator: Yes
Version: 2.2.0.1024
Malware Database: v2016.03.04.05
Rootkit Database: v2016.02.27.01
License: Trial
Malware Protection: Enabled
Malicious Website Protection: Enabled
Self-protection: Disabled
OS: Windows 10
CPU: x64
File System: NTFS
User: Andreiii
Scan Type: Threat Scan
Result: Completed
Objects Scanned: 337546
Time Elapsed: 3 min, 0 sec
Memory: Enabled
Startup: Enabled
Filesystem: Enabled
Archives: Enabled
Rootkits: Disabled
Heuristics: Enabled
PUP: Enabled
PUM: Enabled
Processes: 0
(No malicious items detected)
Modules: 0
(No malicious items detected)
Registry Keys: 1
PUP.Optional.ConduitTB.Gen, HKU\S-1-5-21-2785295504-2673479696-1846757279-1003\SOFTWARE\Conduit, Quarantined, [62631271cacf0b2b9249c1b99f659769],
Registry Values: 0
(No malicious items detected)
Registry Data: 0
(No malicious items detected)
Folders: 0
(No malicious items detected)
Files: 0
(No malicious items detected)
Physical Sectors: 0
(No malicious items detected)
(end)
Do any of you know how to get rid of this ? Oh , I have to mention that in this time I’ve reinstalled the windows as well , but only quick formatting the SSD , not the HDDs.